exploitDog

GHSA-8mjq-99fv-7g2j

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

PHP remote file inclusion vulnerability in inc/nuke_include.php in newsSync 1.5.0rc6 allows remote attackers to execute arbitrary PHP code via a URL in the newsSync_NUKE_PATH parameter.

PHP remote file inclusion vulnerability in inc/nuke_include.php in newsSync 1.5.0rc6 allows remote attackers to execute arbitrary PHP code via a URL in the newsSync_NUKE_PATH parameter.

Ссылки

EPSS

Процентиль: 90%

0.05338

Низкий

CVE ID

Связанные уязвимости

CVE-2007-3136

nvd

больше 18 лет назад

PHP remote file inclusion vulnerability in inc/nuke_include.php in newsSync 1.5.0rc6 allows remote attackers to execute arbitrary PHP code via a URL in the newsSync_NUKE_PATH parameter.

EPSS

Процентиль: 90%

0.05338

Низкий

CVE ID